On 2010/04/08 09:35 PDT, johnjbarton wrote: > On 4/7/2010 9:35 PM, Nelson B Bolyard wrote: ... >> Inconveniencing the users is a NECESSARY part of getting this >> vulnerability fixed. Without that, the servers have NO INCENTIVE to >> lift a finger to fix this. > ... > > The claim is obviously false as the recent update to Firefox 3.6.3 > clearly demonstrates. If servers operators believe their users are at > risk, then they will take immediate action to protect them.
Most server operators have not yet even HEARD of this vulnerability. In many cases the first way they ever will hear about it is from their annoyed users. > Using spam or pop-up ads to badger users in to lobbying on your behalf > will drive them to other browsers. On _MY_ behalf? certainly not! On their OWN behalf! Those users are the ones who stand to lose while their vulnerabilities and the vulnerabilities of the servers they use remain unfixed. It's in their own best interest to see those fixed. It is in their own interest that they will complain to their servers' admins. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
